CVE-2026-22616

Summary

Eaton Intelligent Power Protector (IPP) software allows repeated authentication attempts against the web interface login page due to insufficient rate‑limiting controls. This security issue has been fixed in the latest version of Eaton IPP which is available on the Eaton download centre.

Affected Software

VendorProductVersion RangeStatus
EatonIPP Software0 < 2.0affected

Weaknesses

  • CWE-307: CWE-307 Improper restriction of excessive authentication attempts

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: yes
    • Technical Impact: partial

References